Stonesoft Releases Evader 2.01 Advanced Evasion Testing Tool

Stonesoft Press Release, Helsinki, Finland — February 26, 2013 — The cyber security expert Stonesoft today released Evader 2.01, an updated version of the world´s first advanced evasion software testing tool. Since its initial release at the Black Hat conference in July 2012, thousands of companies have downloaded the tool to identify potential security risks in their network.

Evader 2.01 provides organizations with a free tool that can be used to test their network’s ability to withstand advanced evasion techniques (AETs). Evader 2.01 includes a new graphical user interface to improve usability and the tool supports multiple evasion techniques and can be used in any test environment.

AETs are used to attack networks by combining several known evasion methodologies to create a new, earlier unknown and dynamically changing technique that is delivered over several layers of a network simultaneously. This allows the attacker to successfully deliver any exploit, malicious payload or code to a target host without detection.

“Breaches continue to occur where corporations have invested heavily in security solutions. However, design flaws in existing firewalls and intrusting prevention systems are being exploited” said Ilkka Hiidenheimo, CEO of Stonesoft. “Attackers are more sophisticated today and employ evasive techniques to avoid detection. Organizations must be aware of these types of attacks and Evader can be used to help them find out whether they can resist the attacks.”

Evader 2.01 is a ready-made test lab that includes a set of AETs. It enables an organization to run manually or automatically a variety of AET combinations that hide well-known MSRPC (vulnerability from 2008) and HTTP (2004) exploits, and then deliver them through the tested network security devices to a vulnerable target host image. Evader 2.01 includes a set of AETs that has gone through the CERT vulnerability coordination process, which began two years ago. The essence of Evader is to provide hard facts about AET readiness of an organization’s own security devices, support decision making and raise an organization’s security level.

Stonesoft is demonstrating Evader 2.01 in San Francisco during the annual RSA Conference at booth #1953, February 25 to March 1, 2013. During the demonstration, Stonesoft will test leading security products for their ability to protect against AETs, including HP/Tipping Point, McAfee, Palo Alto Networks and SourceFire.

Stonesoft serves private and public sector organizations requiring high availability, ease of management, compliance, dynamic security and protection of their critical digital assets and business continuity against today’s rapidly evolving cyber threats. Stonesoft is a recognized researcher of advanced evasion techniques (AETs) used in targeted cyber attacks to bypass network security. Stonesoft has the highest customer retention rate in the industry due to low TCO, ease of management, and overall customer excellence. Stonesoft’s customer base covers more than 6,500 mid or large-sized organizations across various industries and geographical markets.

Founded in 1990, the company’s track record is well recognized by certifiers, industry analysts and demanding customers. The company’s corporate headquarters are based in Helsinki, Finland and North American headquarters in Atlanta, Georgia. For more information visit www.stonesoft.com.